Do they really live security?

Discussion in 'ESET NOD32 Antivirus' started by chrizio, Apr 3, 2013.

Thread Status:
Not open for further replies.
  1. chrizio

    chrizio Guest

    For what reason do they asking customers to send lot of sensitive data through non-encrypted channel? For more details see ESET customer care contact form on theirs web.
     
  2. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    You could always post a link to the contact form you're talking about :)
     
  3. er34

    er34 Guest


    Yep, you are right>
    http://www.eset.com/support/contact/ is not encrypted and the data is being sent in non-encrypted channel. The data sent might be consider sensitive but might also be considered non-important and non-personal.
     
  4. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
  5. er34

    er34 Guest

    Yep, seem true. That is fine.

    However going from eset.com -> Support -> Home -> contact... it opens the http only version, not the secure one.
     
  6. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    Yes same here :)
     
  7. webyourbusiness

    webyourbusiness Registered Member

    Joined:
    Nov 16, 2004
    Posts:
    2,640
    Location:
    Throughout the USA and Canada
    it wouldn't take much for the ESET web dev to fix this... :D
     
  8. dwomack

    dwomack Eset Staff Account

    Joined:
    Mar 2, 2011
    Posts:
    588
    Our Web Dev team has been notified and they're already looking into it. I'll post again once the change has been made. Thanks for the heads up!
     
  9. webyourbusiness

    webyourbusiness Registered Member

    Joined:
    Nov 16, 2004
    Posts:
    2,640
    Location:
    Throughout the USA and Canada
    I also used it as a catalyst to revisit the links on some of our pages - those that lead to pages where data is collected are being hard-coded as https links... ;)
     
  10. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    Nice to hear :D
     
  11. er34

    er34 Guest

    Screenshots says it all

    wilders.png
     
  12. webyourbusiness

    webyourbusiness Registered Member

    Joined:
    Nov 16, 2004
    Posts:
    2,640
    Location:
    Throughout the USA and Canada
    I'm not really sure what you think it says - because ESET said in this very thread that they are passing it onto their web-dev team to get working on it.

    ESET.COM isn't *my* website.... :cautious:
     
  13. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    Last edited: Apr 5, 2013
  14. er34

    er34 Guest

    Well, sorry. I did not realize you are talking about YOUR site, by writing "our" I thought you mean the global ESET site which we all visit.
     
  15. foneil

    foneil Eset Staff Account

    Joined:
    Dec 7, 2010
    Posts:
    255
    Location:
    San Diego
    The support request form is now serving over HTTPS:

    https://www.eset.com/us/support/contact/

    Redirects are in place so if someone requests HTTP, they will automatically get redirected to HTTPS.

    Please let us know if there are any issues.
     
  16. SweX

    SweX Registered Member

    Joined:
    Apr 21, 2007
    Posts:
    6,429
    Thanks and great job. It's working fine for me :thumb:
     
  17. Quad

    Quad Registered Member

    Joined:
    Jan 10, 2013
    Posts:
    47
    Not the case if launched from ESS GUI*, which takes you to this URL: http://www.eset.com/support/contact/, still not HTTPS and I was not redirected.

    *) Help and support > Customer care support request (web form).
     
Thread Status:
Not open for further replies.